Vulnerability Name:

CVE-2002-2405 (CCN-10139)

Assigned:2002-09-18
Published:2002-09-18
Updated:2008-09-05
Summary:Check Point FireWall-1 4.1 and Next Generation (NG), with UserAuth configured to proxy HTTP traffic only, allows remote attackers to pass unauthorized HTTPS, FTP and possibly other traffic through the firewall.
CVSS v3 Severity:3.5 Low (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): Required
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): Low
Availibility (A): None
CVSS v2 Severity:4.9 Medium (CVSS v2 Vector: AV:N/AC:M/Au:S/C:P/I:P/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): None
4.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:P/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
Vulnerability Type:CWE-264
Vulnerability Consequences:Bypass Security
References:Source: BUGTRAQ
Type: UNKNOWN
20020918 Firewall-1 ?HTTP Security Server - Proxy vulnerability

Source: CCN
Type: BugTraq Mailing List, Wed Sep 18 2002 - 00:15:47 CDT
Firewall-1 HTTP Security Server - Proxy vulnerability

Source: MITRE
Type: CNA
CVE-2002-2405

Source: CCN
Type: Check Point Software Web site
Check Point Software Technologies: Support Services

Source: XF
Type: UNKNOWN
fw1-http-proxy-bypass(10139)

Source: CCN
Type: OSVDB ID: 4433
Check Point FireWall-1 HTTP Proxy Traffic Bypass

Source: BID
Type: UNKNOWN
5744

Source: CCN
Type: BID-5744
Check Point Firewall-1 HTTP Proxy Server Unauthorized Protocol Access Vulnerability

Source: XF
Type: UNKNOWN
fw1-http-proxy-bypass(10139)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:checkpoint:firewall-1:4.1:*:*:*:*:*:*:*
  • OR cpe:/a:checkpoint:firewall-1:ng:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:checkpoint:firewall-1:4.1:*:*:*:*:*:*:*
  • OR cpe:/a:checkpoint:next_generation:*:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    checkpoint firewall-1 4.1
    checkpoint firewall-1 ng
    checkpoint firewall-1 4.1
    checkpoint next generation *